Multiple heap-based buffer overflow vulnerabilities exist in V-Server V4.0.18.0 and earlier and V-Server Lite V4.0.18.0 and earlier. If a user opens a specially crafted VPR file, information may be disclosed and/or arbitrary code may be executed.
[
{
"cpes": [
"cpe:2.3:a:fujielectric:v-server_lite:*:*:*:*:*:*:*:*"
],
"vendor": "fujielectric",
"product": "v-server_lite",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "V4.0.18.0",
"versionType": "custom"
}
],
"defaultStatus": "unknown"
}
]